Hello everyone,
I’m currently trying to configure an HTTPS connection with an SSL certificate for our Business Central On‑Prem environment, using Windows Authentication.
So far, I have applied the following settings in the CustomSettings.config file:
<add key="ClientServicesSSLEnabled" value="true" />
<add key="PublicWebBaseUrl" value="https://[OUR-DOMAIN].de/[Service-Tier-Name]_HTTPS/WebClient" />
<add key="ClientServicesCredentialType" value="Windows" />
<add key="ServicesCertificateThumbprint" value="[THUMBPRINT]" />
Additionally, I configured these values in the navsettings.json:
"RequireSsl": "true",
"DnsIdentity": "[DOMAIN-Name]",
"ServicesCertificateThumbprint": "[THUMBPRINT]",
"ClientServicesCredentialType": "Windows",
"ServerHttps": "true"
The service tier is running under a domain service account.
The HTTPS URL itself is reachable, and the browser displays the authentication prompt as expected. However, even when entering correct credentials, authentication fails and the login dialog keeps reappearing. I never get access to the Web Client.
My questions:
- Did I miss any configuration steps?
- Is there anything that needs to be set up in Active Directory (e.g., SPNs, delegation, etc.) to make Windows Authentication work over HTTPS?
- Are there additional Business Central or IIS settings required for this scenario?
If you need more details, feel free to ask. :)
Kind regards,
Manfred Tag
